Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:pypi/opencv-python@4.1.2.30
purl pkg:pypi/opencv-python@4.1.2.30
Next non-vulnerable version 4.8.1.78
Latest non-vulnerable version 4.8.1.78
Risk 4.0
Vulnerabilities affecting this package (3)
Vulnerability Summary Fixed by
VCID-4sy2-mnu2-n3ew
Aliases:
GHSA-qr4w-53vh-m672
opencv-python bundled libwebp binaries in wheels that are vulnerable to CVE-2023-4863 opencv-python versions before v4.8.1.78 bundled libwebp binaries in wheels that are vulnerable to CVE-2023-4863. opencv-python v4.8.1.78 upgrades the bundled libwebp binary to v1.3.2.
4.8.1.78
Affected by 0 other vulnerabilities.
VCID-73g1-r39e-z7ez
Aliases:
PYSEC-2023-183
opencv-python versions before v4.8.1.78 bundled libwebp binaries in wheels that are vulnerable to CVE-2023-4863. opencv-python v4.8.1.78 upgrades the bundled libwebp binary to v1.3.2.
4.8.1.78
Affected by 0 other vulnerabilities.
VCID-jypn-sttp-tkgm
Aliases:
CVE-2019-5064
GHSA-q799-q27x-vp7w
Out-of-bounds Write An exploitable heap buffer overflow vulnerability exists in the data structure persistence functionality of OpenCV, A specially crafted JSON file can cause a buffer overflow, resulting in multiple heap corruptions and potentially code execution. An attacker can provide a specially crafted file to trigger this vulnerability.
4.2.0.32
Affected by 2 other vulnerabilities.
Vulnerabilities fixed by this package (2)
Vulnerability Summary Aliases
VCID-h7gk-61kp-8ygz Out-of-bounds Read OpenCV has an out-of-bounds read in hal_baseline::v_load in core/hal/intrin_sse.hpp when called from computeSSDMeanNorm in modules/video/src/dis_flow.cpp. CVE-2019-16249
GHSA-x3rm-644h-67m8
VCID-kxqz-tbvz-gfcs Out-of-bounds Write In opencv calls that use libpng, there is a possible out-of-bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges required. User interaction is not required for exploitation. Product: AndroidVersions: Android-10Android ID: A-110986616 CVE-2019-9423
GHSA-8849-5h85-98qw

Date Actor Action Vulnerability Source VulnerableCode Version
2026-06-06T05:21:01.351228+00:00 GitLab Importer Affected by VCID-4sy2-mnu2-n3ew https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/opencv-python/GHSA-qr4w-53vh-m672.yml 38.6.0
2026-06-06T01:02:10.908952+00:00 GitLab Importer Fixing VCID-kxqz-tbvz-gfcs https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/opencv-python/CVE-2019-9423.yml 38.6.0
2026-06-05T17:03:04.587836+00:00 PyPI Importer Affected by VCID-73g1-r39e-z7ez https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip 38.6.0
2026-06-04T17:25:07.438291+00:00 GithubOSV Importer Fixing VCID-h7gk-61kp-8ygz https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2021/10/GHSA-x3rm-644h-67m8/GHSA-x3rm-644h-67m8.json 38.6.0
2026-06-02T04:40:12.425590+00:00 GitLab Importer Affected by VCID-jypn-sttp-tkgm https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/opencv-python/CVE-2019-5064.yml 38.6.0
2026-06-02T04:40:11.471631+00:00 GitLab Importer Fixing VCID-h7gk-61kp-8ygz https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/opencv-python/CVE-2019-16249.yml 38.6.0
2026-06-02T04:25:21.479713+00:00 Pypa Importer Affected by VCID-73g1-r39e-z7ez https://github.com/pypa/advisory-database/blob/main/vulns/opencv-python/PYSEC-2023-183.yaml 38.6.0